STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 1 hour ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM Hardware Management Console (HMC) Security Technical Implementation Guide

V-256864

CAT II (Medium)

Processor Resource/Systems Manager (PR/SM) must not allow unrestricted issuing of control program commands.

Rule ID

SV-256864r958472_rule

STIG

IBM Hardware Management Console (HMC) Security Technical Implementation Guide

Version

V2R1

CCIs

CCI-000213

Discussion

Unrestricted control over the issuing of system commands by a Logical Partition could result in unauthorized data access and inadvertent updates. This could result in severe damage to system resources.

Check Content

Using the Hardware Management Console, verify that the Logical Partitions cannot issue control program commands to another Logical Partition.  Use the PR/SM panel, known as the Security Definitions Page, to do this.  The Cross Partition Control option must be turned off.

NOTE:  The default is that the Cross Partition Control option is turned off.

If Processor Resource/Systems Manager (PR/SM) allows unrestricted issuing of control program commands then this  is a FINDING

Fix Text

Review the Security Definition parameters specified under PR/SM, and turn off the Cross Partition Control option.